SSL Certificates
Managing secure connections and troubleshooting certificate errors.
Default Behavior
By default, Voca validates server certificates against the system's root CA store. If a certificate is invalid, expired, or self-signed, Voca will refuse to connect to protect you from MITM attacks.
Ignoring Errors
Warning: Disabling certificate verification makes your connection insecure. Only do this for trusted local testing.
To bypass verification (e.g., for local development), use the --no-check-certificate flag:
voca --no-check-certificate https://localhost:8080Client Certificates
Voca supports mutual TLS (mTLS) for authenticated connections. You can provide a client certificate and private key.
--certificate=<file> Client certificate file
--private-key=<file> Private key file
--private-key=<file> Private key file